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ELEKTRQNISK TRANSAKTIQN 
Tekniskt omrade 

Foreliggande uppfinning hanfor sig allmant till 
elektroniska transaktioner , dvs framst betalningar, som 
sker pa elektronisk vag. Uppfinningen avser speciellt 
5 elektroniska transaktioner som sker under utnyttjande av 
ett anvandarkort , sasom ett bankkort, kreditkort, konto- 
kort, eller dylikt, vilket kort ar ett sa kallat aktivt 
kort . 

Teknisk bakgrund 

10 Under senare ar har intresset for elektroniska 

transaktioner okat markant, sarskilt i takt med att In- 
ternet fatt ett kraftigt genomslag. Sakerhetsf ragor har 
harvid hamnat i fokus, och det har foreslagits olika sys- 
tem och standarder som skall garantera sakerheten i sam- 

15 band med elektroniskt oversandande av transakt ionsmedde- 
landen. Av sarskilt intresse har varit hur man skall 
skydda exempelvis over Internet overforda kreditkortsnum- 
mer i samband med handel over Internet. Foreslagna system 
och standarder har det gemensamt att de bygger antingen 

20 pa att kanslig information, som kan missbrukas, t ex ett 
kreditkortsnummer , icke skall overforas over kommunika- 
tionsnatet, eller pa att sadan kanslig information skall 
overforas i krypterad form. I bada alternativen ligger 
tonvikten pa f orhallandevis komplicerade administrativa 

25 rutiner och systemkonf igurationer , etc, vilket sasom in- 
ses innebar begransningar och hinder for ett mera allmant 
utnytt j ande . 

Uppf inningens syf te 

Ett huvudsyfte med foreliggande uppfinning ar att 
30 mojliggora elektroniska transaktioner pa ett forenklat 
satt under bibehallande av full sakerhet. 

Ett annat syfte ar att mojliggora olika slags elek- 
troniska transaktioner inom ramen for samma grundkoncept . 
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Annu ett syfte ar att mojliggora elektroniska trans- 
aktioner oberoende av val av kommunikationsvag for ut- 
nytt j at f ransaktionsmeddelande . 

Ytterligare ett syfte ar att mojliggora elektroniska 
5 transaktioner som i princip icke kraver overforing av ut- 
nyttjat transakt ionsmeddelande via en saker kommunika- 
tionsvag . 

Sammanf attning av uppfinningen 

Ovannamnda syften uppnas genom de uppf inningssardrag 

10 som framgar av bifogade patentkrav. 

Uppfinningen baserar sig salunda pa en insikt om det 
fordelaktiga i att utnyttja speciella transaktionsmedde- 
landen, som oberoende och under full egen kontroll skapas 
av en anvandare och som har sadan beskaf f enhet , att de 

15 endast kan ha skapats av anvandaren i fraga, icke kan ha 
manipulerats under oversandande till en mottagare eller 
adressat utan att detta latt kan konstateras (akthets- 
kontroll) , och enkelt kan "valideras" efter oversandare i 
och for slutforande av onskad transaktion. Enligt uppfin- 

20 ningen utnyttjar avsandaren ett honom tillordnat unikt 
aktivt kort med dari lagrad privat nyckel (vars publika 
motsvarighet i ett asymmetriskt kryptosystem ar allmant 
tillganglig) for att forse ett av avsandaren skapad 
transaktionsmeddelande med en for avsandaren unik digital 

25 signatur, varefter det signerade transaktionsmeddelandet 
kan oversandas pa godtyckligt satt . 

Endast en rattmatig anvandare av det aktiva kortet 
kan aktivera detta for signering, varigenom ett grundlag- 
gande identitetskrav ar uppfyllt. Den digitala signaturen 

30 innebar vidare ett datalas som omojliggor meddelandemani- 
pulering utan upptackt vid senare akthetskontroll med ut- 
nyttjande av den allmant tillgangliga publika nyckel, som 
hor till anvandaren. Anvandarens oberoende skapande av 
transaktionsmeddelandet innebar full kontroll av innehal- 

35 let i meddelandet. Uppfinningen innebar salunda krav pa 
koppling av kansliga uppgifter, sasom ett kortnummer, i 
det overforda transaktionsmeddelandet till en digital 
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signatur for att uppgifterna i fraga skall vara anvandba- 
ra. I avsaknad av en koppling till en digital signatur ar 
uppgifterna salunda i princip vardelosa och kan foljakt- 
ligen icke missbrukas for falska nattransaktioner , aven 
5 om det skulle kunna fangas upp av nagon utomstaende i 

samband med ett oversandande av transaktionsmeddelandet . 
Hur oversandandet sker blir i princip utan betydelse. 
Detta innebar ett synsatt som ar helt motsatt dagens 
stravanden efter att astadkomma sarskilda, sakra, dvs 

10 krypterade, kommunikationssystem for oversandande av 
transaktionsmeddelanden over exempelvis Internet. 

Det ar foredraget att ett transaktionsmeddelande en- 
ligt uppfinningen innehaller uppgift om avsandare, trans- 
aktionsbelopp och mottagare samt f oretradesvis en foran- 

15 derlig uppgift, sasom ett lopnummer. 

Enligt uppfinningen skapar salunda anvandaren vad 
som kan sagas vara en signerad "elektronisk check", vil- 
ken kan oversandas pa godtyckligt satt och vid godtycklig 
tidpunkt till en adressat eller mottagare. 

20 Efter mottagning kan ett transaktionsmeddelande en- 

ligt uppfinningen kontrolleras vad galler akthet genom 
kontroll av den digitala signaturen, varefter "valider- 
ing" och gottskrivning eller kreditering av mottagaren 
med transaktionsbeloppet ifraga kan ske pa godtyckligt 

25 lampligt satt, lampligen enligt samma principer som gal- 
ler for inlosen av en vanlig check eller for clearing i 
samband med kortkop. 

Enligt uppfinningen kan det oversanda, signerade 
transaktionsmeddelandet innehalla erf order liga transak- 

30 tionsuppgif ter i klartext, varvid den digitala signaturen 
pa kant satt kan vara beraknad pa ett kondensat av medde- 
landeuppgif terna . Detta innebar att senare akthetskon- 
troll, validering och kreditering pa mottagarsidan under- 
lattas, eftersom erforderliga uppgifter direkt forelig- 

35 ger, sasom uppgift om avsandare, som gor det enkelt att 

hamta ratt publik nyckel i och for akthet skont roll av den 
digitala signaturen . 
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Om den digitala signaturen utfors pa hela transak- 
tionsmeddelandet , sa att detta overfors i krypterad form, 
kan det overforda transaktionsmeddelandet vara forsett 
med sarskild avsandaruppgif t som gor det mojligt att pa 
5 mottagarsidan hamta ratt publik nyckel for akthetskon- 
trollen och omvandling av transaktionsmeddelandet till 
klartext . 

Enligt uppfinningen kan transaktionsmeddelandet in- 
nehalla avsandaruppgif t av godtyckligt lampligt slag, sa- 

10 som atminstone en av foljande uppgifter: ett kortnummer, 
ett bankkortnummer , ett betalkortnummer , ett kreditkort- 
nummer, ett kontonummer, ett f akturanummer och ett ID- 
nummer. Om det enligt uppfinningen utnyttjade aktiva kor- 
tet ar ett till ett konto kopplat kort, sasom ett kredit- 

15 kort, kan det vara foredraget att sasom avsandaruppgif t 
utnyttja tillhorande kortnummer. Sasom fackmannen inser 
ar det dock mojligt att anvanda varje slags uppgift, som 
pa mottagarsidan enkelt kan kopplas ihop med en anvandar- 
identitet och darigenom med ett tillhorande konto, som 

20 skall debiteras. 

For mottagaruppgif ten galler i princip samma sak. 
Exempelvis kan det vara fraga om atminstone en av foljan- 
de uppgifter: ett kortnummer, ett bankkortnummer, ett be- 
talkortnummer , ett kredit kortnummer , ett kontonummer, ett 

25 f akturanummer och ett ID-nummer. Aven har ar det till- 

rackligt att if ragavarande uppgift pa mottagarsidan enty- 
digt kan relateras till en betalningsmottagare . Det skall 
papekas att overforande av ett transakt ionsbelopp till en 
mottagare inte behover innebara att ett mottagarkonto 

30 krediteras, utan att det ocksa kan vara fraga om att ex- 
empelvis en administrativ enhet, som mottager transak- 
tionsmeddelandet, efter akthetskontroll och validering 
debiterar ett avsandarkonto och till mottagaren sander 
vad som kan betraktas som en check eller postanvisning . 

35 Sasom tidigare redovisats ar ett vasentligt sardrag 

hos foreliggande uppfinning att avsandaren, dvs anvanda- 
ren av det aktiva kortet, skapar och signerar transak- 
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tionsmeddelandet under egen kontroll, dvs i princip obe- 
roende av uppkoppling mot ett kommunikat ionsnat och av en 
datadialdg med en mottagare, ehuru en dylik dialog natur- 
ligtvis kan forekomma i samband med oversandande av ett 
signerat t ransakt ionsmeddelande . Transakt ionsmeddelandet 
skapas foljaktligen f oretradesvis fristaende fran kommu- 
nikationsnatet eller off-line. Detta innebar att avsanda- 
ren har full kontroll over vilka uppgifter som inmatas 
for skapande av transaktionsmeddelandet . Signeringen kan 
sasom inses endast astadkommas av avsandaren, eftersom 
denne i normalfallet ar ensam om att kunna aktivera sitt 
aktiva kort och utlosa signeringen. Nar det galler over- 
sandandet eller overlamnandet av det signerade transak- 
tionsmeddelandet finns dock icke nagra restriktioner , sa- 
som utan vidare inses. Exempelvis kan anvandaren eller 
nagon denne behjalplig person ta med sig det aktiva kor- 
tet med det dari befintliga, signerade transaktionsmedde- 
landet for senare meddelandeavsandande, for meddelandeav- 
sandande pa annan plats, etc, dvs stor valfrihet rader. 
Det signerade transaktionsmeddelandet skulle ocksa kunna 
foras over pa ett sarskilt mellanlagrings- eller trans- 
portmedium i och for overforing till en mottagare 
och/eller adressat . 

Enligt uppfinningen ar det fordelaktigt att transak- 
tionsmeddelandet skapas i det aktiva kortet. Trans- 
aktionsmeddelandet kan harvid lampligen skapas med hjalp 
av i det aktiva kortet i forvag inlagd programvara och 
f oretradesvis i kortet i forvag inlagd avsandaruppgif t , 
t ex ett kortnummer. Lampligen skapas ocksa automatiskt 
ett nytt lopnummer for varje transakt ionsmeddelande . In- 
matning av erforderliga meddelandeuppgif ter i kortet kan 
ske pa olika satt, t ex medelst pa det aktiva kortet an- 
ordnade inmatningsorgan, varvid kortet med fordel utgors 
av ett sa kallat avancerat aktivt kort. For transaktions- 
meddelandet erforderliga uppgifter kan ocksa inmatas me- 
delst en skyddad kortterminal , som med fordel kan utgoras 
av anvandarens egen kortlasarf orsedda terminal eller da- 
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tor. For t ransakt ionsmeddelandet erforderliga uppgifter 
kan ocksa inmatas medelst en separat kortkommunika- 
tionsenhet, varvid den senare f oretradesvis senare aven 
fungerar sasom kortakt ivator . En dylik enhet kan med for- 
del vara utford som en liten, barbar enhet, som anvanda- 
ren kan ha med sig och som av anvandaren utnyttjas da han 
vill aktivera sitt kort och/eller inmata uppgifter i kor- 
tet i en miljo, dar nagon skyddad kortterminal inte 
f inns . 

For transaktionsmeddelandet erforderliga uppgifter 
kan ocksa inmatas medelst en av det aktiva kortet styrd 
telekommunikationsenhet, speciellt en mobil sadan, sasom 
en mobiltelef onanordning . I detta sammanhang kan enheten 
ocksa utnyttjas for oversandande av det signerade trans- 
aktionsmeddelandet, t ex med utnyttjande av en tjanst av 
sa kallad SMS-typ. 

Fackmannen inser att det aven ar mojligt att skapa 
sjalva transaktionsmeddelandet utanfor det aktiva kortet 
exempelvis vid utnyttjande av nagot av ovannamnda upp- 
giftsinmatningsorgan. Det skapade transaktionsmeddelandet 
inmatas darefter i det aktiva kortet i och for signering. 

Enligt en forsta aspekt pa foreliggande uppfinning 
astadkommes ett forfarande for genomforande av elektro- 
niska transaktioner , varvid en avsandare av transaktions- 
meddelanden tilldelas ett aktivt kort med tillhorande 
unik identitet och i kortet skyddat lagrad privat nyckel 
och varvid en tillhorande publik nyckel halls allmant 
tillganglig, vilket forfarande utmarks av att avsandaren 
i samband med en elektronisk transaktion under egen kon- 
troll, f oretradesvis genom egen inmatning av meddelande- 
uppgifter, skapar ett transakt ionsmeddelande, som inne- 
haller for transakt ionen erforderliga uppgifter, samt i 
sitt aktiva kort forser det skapade transaktionsmeddelan- 
det med sin digitala signatur under utnyttjande av sin 
privata nyckel i och for senare utmatning och avsandande 
av transaktionsmeddelandet . 
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Enligt en andra aspekt pa foreliggande uppfinning 
astadkommes ett aktivt kort for genomf orande av elektro- 
niska transaktioner , vilket kort innefattar organ for 
lagring av kortidentif ieringsuppgif ter , organ for skyddad 
5 lagring av en privat nyckel, organ for lagring av en 

asymmetrisk algoritm, organ for inmatning av transaktion- 
suppgifter i kortet, processororgan for att i kortet ska- 
pa ett transaktionsmeddelande baserat pa inmatade trans- 
aktionsuppgif ter , sasom uppgifter som belopp och mottaga- 
10 re, och eventuellt i kortet lagrade uppgifter sasom upp- 
gifter om avsandare och f oretradesvis ett lopnummer, och 
for att forse transaktionsmeddelandet med en digital sig- 
natur pa basis av namnda privata nyckel och namnda asym- 
metriska algoritm, samt organ for utmatning av det signa- 
ls rade transaktionsmeddelandet. 

Enligt en tredje aspekt pa foreliggande uppfinning 
astadkommes en kombination av ett aktivt kort och en for 
kommunikation. med det aktiva kortet anordnad anvandarkon- 
trollerad kommunikationsenhet , med vilken kortet ar an- 
20 ordnat att sammanforas i och for astadkommande av ett 

elektroniskt transaktionsmeddelande, varvid kortet inne- 
fattar organ for skyddad lagring av en privat nyckel, or- 
gan for lagring av en asymmetrisk algoritm, och proces- 
sororgan for att forse ett skapat transaktionsmeddelande 
25 med en digital signatur baserad pa namnda privata nyckel 
och namnda algoritm, och varvid kommunikationsenheten in- 
nefattar organ for inmatning av transaktionsuppgif ter , 
varjamte organ ar anordnade i kommunikationsenheten 
och/eller i kortet for att skapa namnda transaktionsmed- 
30 delande. 

En fjarde aspekt pa foreliggande uppfinning innebar 
anvandning av ett aktivt kort med dari lagrad privat 
nyckel och asymmetrisk kryptoalgoritm for kommunika- 
tionsnatoberoende astadkommande i kortet av ett elektro- 
35 niskt transaktionsmeddelande forsett med en pa den priva- 
ta nyckeln baserad digital signatur. 
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Ytterligare aspekter pa sardrag hos uppfinningen 
kommer att framga av foljande narmare beskrivning av oli- 
ka utf 6ringsexempel under hanvisning till bifogade rit- 
ningar. 

5 Kort beskrivning av ritningarna 

Fig. 1 ar en schematisk illustration av ett exempel 
pa genomf orande av elektroniska transaktioner , under ut- 
nyttjande av ett oppet nat, sasom Internet, i enlighet 
med en uf oringsf orm av foreliggande uppf inning. 

10 Fig. 2 ar en schematisk illustration av samma slag 

som i Fig. 1 exemplif ierande alternativa genomf oranden av 
elektroniska transaktioner i enlighet med uppfinningen. 

Fig. 3 ar en schematisk illustration av ett exempel 
pa genomforande av elektroniska transaktioner, under 

15 utyttjande av en butikskortterminal , i enlighet med en 
anan utf oringsf orm av foreliggande uppf inning. 

Fig. 4 ar en schematisk illustration av samma slag 
som i Fig. 3 med ett annat exempel pa genomforande av 
elektroniska transaktioner, under utnyttjande av en bu- 

20 tikskortterminal, i enlighet med foreliggande uppf inning . 

Fig. 5 ar en schematisk illustration av ett exempel 
pa genomforande av elektroniska transaktioner, under ut- 
nyttjande av mobil telefoni, i enlighet med annu en utfo- 
ringsform av foreliggande uppfinning. 

25 Fig. 6 ar en schematisk illustration av ett exempel 

pa genomforande av elektroniska transaktioner, under ut- 
nyttjande av ett oppet nat for direkt kontakt med en 
bank, i enlighet med ytterligare en utf oringsf orm av fo- 
religgande uppfxnning . 

30 Fig. 7 ar en schematisk illustration av exempel pa 

hur ett avancerat aktivt kort kan utnyttjas for genomfo- 
rande av elektroniska transaktioner i enlighet med fore- 
liggande uppfinning. 

Beskrivning av utf oringsf ormer 

35 I Fig. 1 illustreras schematiskt en forsta utfo- 

ringsform av uppfinningen, vilken kan anvandas for kre- 
ditkortsbetalning over ett oppet nat, sasom Internet, 
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mellan en avsandare och en mottagare ingaende i ett nat- 
verk. Avsandaren forfogar over ett aktivt kort 1 och en 
med lamplig kortlasare (antydd vid 2) forsedd dator 3, 
vilken typiskt kan vara en hemdator och vilken har an- 
5 slutning till Internet 5. En natver ksserver 7 ar ansluten 
till natet 5 samt till i natverket ingaende, olika kre- 
ditkortsadministratorer 8 och 9. De senare ar pa konven- 
tionellt satt anslutna till varandra och till olika kon- 
toforande inst itut ioner , sasom banker 10, 11. I forelig- 

10 gande exempel antas avsandaren ha konto i banken 10 och 
ett kreditkort administrerat av adminis tratoren 8, under 
det att mottagaren 12 har konto i banken 11 och ett kre- 
ditkort administrerat av administratoren 9. 

En tillforlitlig tredje part (TTP) 13 ar natverksad- 

15 ministrator och ansvarar for erforderlig nyckelhantering * 
TTP 13 tilldelar salunda respektive anvandare hans priva- 
ta nyckel, som finns skyddat lagrad i anvandarens kort 1, 
samt haller en katalog 15 tillganglig, fran vilken res- 
pektive anvandares publika nyckel kan hamtas. 

20 Anvandarens aktiva kort 1, som aven har konventio- 

nell kreditkortsf unktion, innehaller pa kant satt minnes- 
och processororgan i form av en eller flera integrerade 
kretsar (antydda vid 17) , liksom konventionella organ for 
att mojliggora kommunikation mellan kortet och en kortla- 

25 sare, da kortet ar placerat i den senare. 

Utover den tidigare namnda privata nyckeln innehal- 
ler namnda minne- och processororgan en kryptoalgoritm av 
asymmetrisk typ, vilken kan vara en DES-algoritm, och 
programvara for genomforande av signering av ett transak- 

30 tionsmeddelande baserat pa den privata nyckeln och namnda 
kryptoalgoritm. Det aktiva kortet 1 aktiveras pa godtyck- 
ligt lampligt satt, t ex medelst i kortet inmatat PIN el- 
ler biometriskt. 

Vid genomforande av en transaktion placeras kortet 1 

35 i datorns 3 kortlasare 17 och kortet aktiveras, om sa 

icke skett dessf orinnan . Skapandet av ett transaktions- 
meddelande kan nu ske i det aktiva kortet 1 och/eller i 
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datorn 3. Om skapandet sker uteslutande i kortet, vilket 
ur sakerhetssynpunkt kan vara att foredraga, innehaller 
kortet ocksa harfor lamplig programvara . I detta fall in- 
matas erforderliga uppgifter for transaktionsmeddelandet 
5 (speciellt om belopp och mottagare) via datorns 3 tan- 
gentbord in i kortet . 

Om sjalva transaktionsmeddelandet skapas i datorn, 
har denna forsetts med harfor erforderlig programvara, 
som lampligen levererats till anvandaren i samband med 

10 utgivandet av det aktiva kortet. Inmatning av meddelande- 
uppgifter sker aven har via tangentbordet • 

Det ar fordelaktigt att som avsandaruppgif t anvanda 
en kortidentif ikation, sasom det aktiva kortets nummer, 
som ges automatiskt av kortet i samband med skapandet av 

15 transaktionsmeddelandet. Som mottagaruppgif t kan med for- 
del inmatas mottagarens kortnummer. 

Efter skapandet av transaktionsmeddelandet skall 
detta forses med ett lopnummer och signeras, vilket sasom 
namnts sker i kortet. Om sjalva meddelandet skapats i 

20 kortet kan det for att begransa den programvara, som mas- 
te finnas i kortet, vara onskvart att utfora den digitala 
signaturen pa sjalva meddelandet, varvid meddelandet far 
formen av kryptotext. Det darefter oversanda signerade 
meddelandet maste da kunna ge information om avsandaren, 

25 sa att for akthetskontroll erforderlig publik nyckelkan 
inhamtas, sasom kommer att redovisas senare. Speciellt om 
transaktionsmeddelandet skapas i en skyddad egen dator, 
kan det vara lampligt att generera den digitala signatu- 
ren pa ett kondensat av sjalva meddelandet, varvid detta 

30 senare kommer att foreligga i klartext och ocksa kan 
oversandas i klartext . 

Det signerade transaktionsmeddelandet kan nu med 
fordel ges formen av E-post och darefter sandas over na- 
tet 5 till natverksservern 7. 

35 Om transaktionsmeddelandet ar i klartext, kan ser- 

vern 7 baserat pa uppgifterna i transaktionsmeddelandet 
utan vidare sanda det signare meddelandet antingen till 
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avsandarens eller mottagarens kortadministrator 8 respek- 
tive 9 i och for akthetskontroll samt, om akthet konsta- 
teras, ef ter f 51 j ande validering, debitering av avsandaren 
och kreditering av avsandaren av if ragavarande transk- 
5 tionsbelopp, under utnyttjande av lamplig clearingproce- 
dur . 

Akthet skontrollen innebar att exempelvis avsandarens 
kortadministrator inhamtar avsandarens publika nyckel 
fran en egen nyckelkatalog eller katalogen 15 hos TTP 13 

10 och med hjalp darav och av if ragavarande kryptoalgoritm 
kontrollerar meddelandets digitala signatur. 

Om det av servern mottagna meddelandet inte ar i 
klartext, inhamtar servern 7 fran katalogen 15 den publi- 
ka nyckel som hor till den avsandare som kan identifieras 

15 av det mottagna, signerade transaktionsmeddelandet , t ex 
pa basis av en sarskild avsandaruppgif t , sasom en nat- 
verksidentitet eller Internet-identitet . Efter konventio- 
nell dekryptering av meddelandet med utnyttjande av den 
inhamtade publika nyckeln har servern 7 tillgang till 

20 meddelandets uppgifter i klartext och kan skicka medde- 
landet vidare, i och for akthetskontroll etc, sasom 
namnts ovan. 

Annu ett alternativ har ar att det pa natet 5 utsan- 
da meddelandet forses med en angiven address till behorig 

25 kortadministrator, t ex 8, sa att servern 7 kan direkt 
dirigera meddelandet dit for fortsatt behandling enlig 
ovan. Om det signerade meddelandet icke ar i klartext, 
maste aven har det mottagna meddelandet ge sadan informa- 
tion att ratt publik nyckel kan inhamtas i och for akt- 

30 hetskontroll och dekryptering av sjalva meddelandet. 

I Fig. 2 illustreras schematiskt en andra utforings- 
form av uppf inningen, som utnyttjar i grunden samma kon- 
figuration som i Fig. 1, ehuru transaktionsmeddelandet 
fran avsandaren sands direkt till en mottagares dator 21 

35 via natet 5. Mottagaren sander meddelandet vidare, vilket 
kan ske via natet till servern 7, sasom antytts med pilen 
23, eller via nagon annan vag, som antyds via pilen 25. 
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I denna ut f oringsf orm kan det vara lampligt att 
sjalva meddelandet ar i klartext, sa att mottagaren kan 
se uppgifterna dari, aven om han inte har omedelbar till- 
gang till avsandarens publika nyckel i och for akthets- 
5 kontroll eller dekryptering av den digitala signaturen. 
Det signerade meddelandet kan emellertid av avsandaren 
vid behov krypteras mad en mottagaren tillhorig publik 
nyckel, varvid mottagaren vid mottagandet dekrypterar 
meddelandet med utnyttjande av sin egen privata nyckel 

10 och tillhorande kryptoalgoritm och darefter vidarebef ord- 
rar det dekrypterade men alltjamt signerade meddelandet. 

I fallet med en annan transportvag 25 an natet 5 kan 
det vara fordelaktigt att utnyttja ett mellanlagringsme- 
dium, t ex en diskett (antydd vid 26) , som mottagaren pa 

15 lampligt och sakert satt overlamnar till sin kortadmi- 
nistrator eller bank for fortsatt behandling i enlighet 
med vad som beskrivits ovan. Det inses att mottagaren kan 
samla ett antal mottagna transaktionsmeddelanden pa ett 
dylikt mellanlagringsmedium, innan atgarder for den fort- 

20 satta behandlingen vidtages . 

I Fig. 3 illustreras schematiskt en utf oringsf orm 
av uppfinningen som lampar sig for transaktioner via en 
frammande "terminal" 31 och som utnyttjar en anvandarkon- 
trollerad portabel enhet 33 for skapande av ett transak- 

25 tionsmeddelande . 

Enheten 33 utgors av en kombinerad aktivator och 
uppgif tsinmatare for det aktiva kortet. Enheten 33 ar pa 
lampligt satt anordnad for kommunikat ion med kortet 1, 
t ex genom att den inbegriper en integrerad kortlasare, i 

30 vilket kortet fors in. Enheten 33 har vidare en tangent- 
uppsattning och en display. 

Vid betalning exempelvis i en butik placeras kortet 
i enheten 33 och aktiveras t ex genom att en PIN-kod ih- 
matas medelst enhetens tangentuppsattning . Medelst tan- 

35 gentuppsattningen inmatas dessutom erforderliga betal- 
ningsuppgif ter , sasom belopp och mottagare. Om transak- 
tionsmeddelandet bade skapas och signeras i sjalva kor- 
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tet, overfors sjalva uppgifterna till kortet. Om sjalva 
meddelandet och eventuellt ett kondensat darav skall ska- 
pas i enheten 33, i och for overforing till och signering 
i kortet 1, ar enheten forsedd med processororgan och er- 
5 forderlig programvara harfor. 

Kortet med det signerade transaktionsmeddelandet av- 
lagsnas nu fran enheten 33 och infers i butikens lasa- 
re/terminal 31, varifran meddelandet sands for fortsatt 
behandling pa samma satt som redovisats tidigare. Godkand 

10 akthetskontroll och validering kan lampligen innebara att 
en kvittens sands tillbaka till terminalen. 

Det inses att terminalen 31 naturligtvis skulle kun- 
na kommunicera med servern 7 pa annat satt an via natet 
5, t ex via en skyddad forbindelse. 

15 I Fig. 4 illustreras en variant av den utf oringsf orm 

som visas i Fig. 3. Enheten 33 i Fig. 3 ar harvid utbytt 
mot en skyddad, f oretradesvis fristaende dator eller ter- 
minal 43, som kan vara uppstalld i exempelvis en butik 
och mojliggor fristaende, sakert skapande av ett transak- 

20 tionsmeddelande pa likartat satt som beskrivits i anslut- 
ning till Fig. 3, i och for inmatning i en butikskortter- 
minal 31. 

I Fig. 5 illustreras en utf oringsf orm av foreliggan- 
de uppfinning som innebar utnyttjande av en mobiltelef on- 

25 anordning 51 och ett tillhorande mobiltelenat 55. Mobil- 
telef onanordningen inbegriper utover en mobiltelef onfunk- 
tion aven sadan aktivering- och inmatningsf unktion som 
beskrivits i samband med enheten 33 i Fig. 3. Mobiltele- 
f onf unktionen ar f oretradesvis ocksa styrd av det aktiva 

30 kortet. 

Medelst telef onf unktionen oversandes det signerade 
transaktionsmeddelandet till en enhet eller central 57, 
som ombesorjer fortsatt behandling av transaktionsmedde- 
landet exempelvis i enlighet med vad som beskrivits i an- 
35 slutning till foregaende figurer. 
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Oversandandet av transaktionsmeddelandet kan med 
fordel ske under utnyttjande av en sa kallad SMS-tjanst 
eller liknande hos mobiltelenatet . 

Enheten 57 skulle ocksa kunna vara en sarskild cen- 
5 tral, som after akthetskontroll etc. ombesorjer betal- 
ningar baserat pa mottagna transaktionsmeddelanden . 

I Fig. 6 illustreras en ut f oringsf orm av foreliggan- 
de uppfinning som med fordel kan utnyttjas for ombesor- 
jande av betalningsuppdrag . Hos en avsandare, dvs betala- 

10 re, skapas signerade transaktionsmeddelanden sasom be- 

skrivits, har exemplif ierat med samma metod som i Fig. 1. 
Transaktionsmeddelandet sands till avsandarens kontofo- 
rande bank 10, som i en katalog 60 har tillgang till av- 
sandarens publika nyckel. Det inses att banken skulle 

15 kunna vara kortutf ardare och nyckeladministrator och att 
avsandaruppgif ten i transaktionsmeddelandet lampligen kan 
utgoras av avsandarens bankkontonummer . 

Efter mottagande av ett transakt ionsmeddelande och 
akthetskontroll darav ombesorjer avsandarens bank 10 ge- 

20 nom en clearingprocedur att den i transaktionsmeddelandet 
lampligen genom tillhorande bankkontonummer identif ierade 
betalningsmottagaren gottskrivs if ragavarande belopp, dvs 
att mottagarens konto i mottagarens bank 11 krediteras 
beloppet ifraga. 

25 Ett annan alternativ mojlighet ar att avsandarens 

bank 10 sander en utbetalningsavi direkt till mottagaren 
12 exempelvis baserat pa mottagaruppgif ter i transak- 
tionsmeddelandet. Detta alternativ ar antytt medelst den 
streckade linjen 62 i Fig. 6. 

30 I utforandet enligt Fig, 6 kan det for okande av sa- 

kerheten vara lampligt att kryptera det oversanda signe- 
rade transaktionsmeddelandet. Avsandaren anvander da ban- 
kens 10 publika nyckel och f oret radesvis samma kryptoal- 
goritm, som utnyttjas for signeringen. Banken 10 kan sa- 

35 som inses utan vidare utfora dekryptering med utnyttjande 
av sin privata nyckel. 
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Om banken 10 ar administrator av avsandarens nyckel- 
par, dys besitter saval den publika nyckel som den priva- 
ta nyckel som hor till avsandaren, kan avsandaren alter- 
nativt utfora krypteringen av det signerade meddelandet 
5 med sin publika nyckel. Banken 10 kan da dekryptera det 
oversanda meddelandet med utnyttjande av avsandarens pri- 
vata nyckel^ som hamtas fran en katalog, innan akthets- 
kontroll genomfors med utnyttjande av avsandarens publika 
nyckel . 

10 I Fig, 7 illustreras slutligen schematiskt anvand- 

ning av ett sa kallat avancerat aktivt kort i samband med 
uppf inningen . Det avancerade aktiva kortet 71 har aven en 
tangentuppsattning och en display, som medger att ett 
signerat transaktionsmeddelande kan skapas i kortet helt 

15 och hallet utan externa hjalpmedel. Kortet kan darefter 

inforas i exempelvis en dator eller en terminal i och for 
vidaresandning av meddelandet och fortsatt behandling i 
enlighet med vad som beskrivits tidigare, 

Ehuru uppfinningen illustrerats genom ett antal ut- 

20 f oringsexempel, ar uppfinningen sjalvfallet icke in- 
skrankt dartill, utan andringar och modif ikationer ar 
mojliga inom ramen for ef terf ol j ande patentkrav. Salunda 
kan enskilda sardrag fran de olika utf oringsexemplen sam- 
manforas i nya kombinationer inom ramen for uppfinnings- 

25 tanken. 
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PATENTKRAV 

1. Forfarande vid genomf orande av elektroniska 
transaktioner , varvid en avsandare av transaktionsmedde- 

5 landen tilldelas ett aktivt kort med tillhorande unik 
identitet och i kortet skyddat lagrad privat nyckel och 
varvid en tillhorande publik nyckel halls allmant till- 
ganglig, kannetecknat av att avsandaren i 
samband med en elektronisk transaktion under egen kon- 

10 troll, f oretradesvis genom egen inmatning av lueddelande- 
uppgifter, skapar ett transaktionsmeddelande, som inne- 
h&ller for transaktionen erforderliga uppgifter, samt i 
sitt aktiva kort forser det skapade transaktionsmeddelan- 
det med sin digitala signatur under utnyttjande av sin 

15 namnda privata nyckel i och for senare utmatning och av- 
sandande av transaktionsmeddelandet , 

2. Forfarande enligt krav 1/ kanneteck- 
nat av att i transaktionsmeddelandet ingar uppgifter 
om avsandare, mottagare, belopp och f oretradesvis ett 

20 transaktionslopnummer . 

3. Forfarande enligt krav 1 eller 2, kanne- 
tecknat av att transaktionsmeddelandet skapas fri- 
staende fran det kommunikationsnat , som utnyttjas for se- 
nare avsandande av transaktionsmeddelandet. 

25 4, Forfarande enligt krav 3, kanneteck- 

nat av att transaktionsmeddelandet skapas off-line, 

5, Forfarande enligt nagot av foregaende krav, 
kannetec-knat av att transaktionsmeddelandet 
skapas i det aktiva kortet, 

30 6. Forfarande enligt krav 5, kanneteck- 

n a t av att transaktionsmeddelandet skapas med hjalp av 
i det aktiva kortet i forvag inlagd programvara och fore- 
tradesvis aven i kortet i forvag inlagda avsandaruppgif - 
ter . 

35 1. Forfarande enligt krav 5 eller 6, k a n n e- . 

tecknat av att for transaktionsmeddelandet erfor- 
derliga uppgifter inmatas medelst pa det aktiva kortet 
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anordnade inmatningsorgan, varvid kortet f oretradesvis ar 
ett sk kallat avancerat aktivt kort. 

8. Forfarande enligt nligot av kraven 1-6, 
kannetecknat av att for transaktionsmeddelan- 

5 det erforderliga uppgifter inmatas medelst en skyddad 
kortterminal . 

9, Forfarande enligt nagot av kraven 1-6, 
kannetecknat av att for transaktionsmeddelan- 
det erforderliga uppgifter inmatas medelst en separat 

10 kortkommunikationsenhet, varvid den senare f oretradesvis 
aven ar en kortaktivator . 

10. Forfarande enligt nagot av kraven 1-6, 
kannetecknat av att for transaktionsmeddelan- 
det erforderliga uppgifter inmatas medelst en av det ak- 

15 tiva kortet styrd telekommunikationsenhet , speciellt en 
mobil sadan, sksom en inobiltelef on . 

11. Forfarande enligt niigot av foregaende krav, 
kannetecknat av att transakt ionsmeddelandet 
innehaller avsandaruppgif t i form av atminstone en av 

20 foljande uppgifter: ett kortnummer, ett bankkortnummer, 
ett betalkortnummer, ett kreditkortnummer, ett kontonum- 
mer, ett f akturanummer , och ett ID-nummer. 

12, Forfarande enligt nagot av foregaende krav, 
kannetecknat av att transaktionsmeddelandet 

25 innehaller mottagaruppgif t i form av atminstone en av 

foljande uppgifter: ett kortnummer, ett bankkortnummer, 
ett betalkortnummer, ett kreditkortnummer, ett kontonum- 
mer, ett f akturanummer och ett ID-nummer, 

13, Forfarande enligt nagot av foregaende krav, 

30 kannetecknat av att det signerade transaktions- 
meddelandet sands till en kort- eller kontoadministrator 
avseende avsandaren eller mottagaren, att akthetskontroll 
av transaktionsmeddelandets digitala signatur sker med 
utnyttjande av den publika nyckel, som ar tilldelad den 

35 som av det overforda transaktionsmeddelandet identifieras 
sasom avsandare, och att mottagaren om akthet foreligger 
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gottskrivs transaktionsbeloppet genom en clearing- 
process • 

14* Forfarande enligt krav 13, kanneteck- 
n a t av att det signerade transaktiohsmeddelandet forst 
5 sands till mottagaren vilken eventuellt efter egen kon- 
troll av meddelandets digitala signatur vidarebef ordrar 
det signerade transaktionsmeddelandet till namnda kort- 
eller kontoadministrator . 

15. Forfarande enligt n&got av kraven 1-12, 

10 kannetecknat av att det signerade transak- 
tionsmeddelandet krypteras med utnyttjande av en publik 
nyckel tillhorande den adressat, vartill transaktionsmed- 
delandet sands, att det krypterade signerade transak- 
tionsmeddelandet sands till adressaten, att adressaten 

15 med utnyttjande av sin privata nyckel dekrypterar det 

signerade transaktionsmeddelandet, att akthetskontroll av 
transaktionsmeddelandets digitala signatur sker med ut- 
nyttjande av den publika nyckel, som ar tilldelad den som 
av det overforda transaktionsmeddelandet identifieras sa- 

20 som avsandare, och att mottagaren om akthet foreligger 

gottskrivs transaktionsbeloppet genom en clearingprocess . 

15. Forfarande enligt krav 15, kanneteck- 
nat av att adressaten ar mottagaren, att mottagaren 
efter dekrypteringen sander det signerade transaktions- 

25 meddelandet till en kort- eller kontoadministrator, var- 
efter namnda akthetskontroll sker. 

17. Forfarande enligt nagot at kraven 1-12, 
k a n n e t e c-k n a t av att det signerade transak- 
tionsmeddelandet krypteras med utnyttjande av avsandarens 

30 publika nyckel samt forses med avsandaruppgif t och daref- 
ter sands till en kort- eller kontoadministrator, som har 
avsandarens privata nyckel och som f oretradesvis ar ut- 
fardare av anvandarens aktiva kort, att namnda administra- 
tor dekrypterar det mottagna krypterade meddelandet med 

35 utnyttjande av namnda privata nyckel, att akthetskontroll 
av det dekrypterade transaktionsmeddelandets digitala 
signatur sker med utnyttjande av den publika nyckel, som 
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ar tilldelad den som av det overforda transaktionsmedde- 
landet . identif ieras sasom avsandare, och att mottagaren 
om akthet foreligger gottskrivs transaktionsbeloppet ge- 
nom en clearingprocess . 
5 18, Forfarande enligt nagot av kraven 1-14, 

kannetecknat av att det signerade transak- 
tionsmeddelandet sands okrypterat, speciellt via ett all- 
mant kommunikationsnat , sasom Internet eller telekoinmuni- 
kationsnat • 

10 19, Forfarande enligt n&got av foreg&ende krav, 

kannetecknat av att det signerade transak- 
tionsmeddelandet sands slisom E-post. 

20. Forfarande enligt nagot av kraven 1-18, 
kannetecknat av att det signerade transak- 

15 tionsmeddelandet sands via ett mobiltelef oninat , speci- 
ellt med utnyttjande av sa kallad SMS-tjanst. 

21. Aktivt kort for genomf orande av elektroniska 
transaktioner, innefattande organ for lagring av kort- 
identif ieringsuppgif ter, organ for skyddad lagring av en 

20 privat nyckel, organ for lagring av en asyiumetrisk algo- 
ritm, organ for inmatning av transaktionsuppgif ter i kor- 
tet, processororgan for att i kortet skapa ett transak- 
tionsmeddelande baserat pk inmatade transkationsuppgif - 
ter, sasom uppgifter om belopp och mottagare, och eventu- 

25 ellt i kortet lagrade uppgifter sasom uppgifter om avsan- 
dare och f oretradesvis ett lopnummer, och for att forse 
transaktionsmeddelandet med en digital signatur pa basis 
av namnda privata nyckel och namnda asymmetriska algo- 
ritm, samt organ for utmatning av det signerade transak- 

30 tionsmeddelandet. 

22. Kort enligt krav 21, kannetecknat 
av att det ar av sa kallad avancerad typ. 

23. Kombination av ett aktivt kort och en for kom- 
munikation med det aktiva kortet anordad anvandarkontrol- 

35 lerad kommunikationsenhet , med vilken kortet ar anordnat 
att sanunanforas i och for astadkommande av ett elektro- 
niskt transaktionsmeddelande, varvid kortet innefattar 
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organ for skyddad lagring av en privat nyckel, organ for 
lagring av en asymmetrisk algoritm, och processororgan 
for att forse ett skapat transaktionsmeddelande med en 
digital signatur baserat pa namnda privata nyckel och 
5 namnda algoritm, och varvid kommunikationsenheten inne- 
fattar organ for inmatning av transaktionsuppgif ter , var- 
jamte organ ar anordnade i kommunikationsenheten 
och/eller i kortet for att skapa namnda transaktionsmed- 
delande . 

10 24. Kombination enligt krav 23, kanneteck- 

n a t av att kommunikationsenheten ar en mobil telekom- 
munikationsanordning . 

25. Kombination enligt krav 23, k a n n e t e c k- 
n a t av att kommunikationsenheten ar en koinbinerad kor- 

15 taktivator och uppgif tsinmatare/behandlare . 

26, Anvandning av ett aktivt kort med dari lagrad 
privat nyckel for kommunikationsnatoberoende astadkomman- 
de av ett elektroniskt transaktionsmeddelande forsett med 
en pa den privata nyckeln baserad digital signatur. 



20 
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SAMMANDRAG 



Forfarande och anordning for genomforande av elek- 
troniska transaktioner . En avsSndare skapar under full 
egen kontroll ett transaktionsmeddelande i ett aktivt 
kort (1) och forser meddelandet med sin digitala signatur 
i kortet i och for senare utmatning och avsandande. 



(Fig. 1) 
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ELECTRONIC TRANSACTION 
Field of the Invention 

The present invention relates to electronic trans- 
actions, i.e. primarily payments, which are effected 
electronically. More specifically, the invention con- 
5 cerns electronic transactions effected while employing 
a user card, such as a cash card, credit card, charge 
card, or the like, said card being a so-called smart 
card . 

Background Art 

10 In recent years, the interest in electronic trans- 

actions has increased significantly, especially concur- 
rently with the impact of the Internet. Security matters 
have been focused, and different systems and standards 
have been suggested to guarantee the security in connec- 
15 tion with electronic transmission of transaction mes- 
sages. A matter that has attracted a lot of interest is 
how to protect, for instance, credit card numbers trans- 
mitted via the Internet in connection with Internet shop- 
ping. What the systems and standards proposed have in 
20 common is that they are based either on the condition 

that sensitive information that may be misused, for in- 
stance a credit card number, is not to be transmitted via 
the communications network, or on the condition that such 
sensitive information is to be transmitted in encrypted 
25 form. In both alternatives, the relatively complicated 
administrative routines and system configurations etc. 
are focused, which, as will be appreciated, results in 
restrictions and obstacles to a more general use. 
Objects of the Invention 
30 A main object of the present invention is to faci- 

litate electronic transactions in a simplified fashion 
while maintaining full security. 

A further object is to facilitate different kinds 
of electronic transactions within the scope of the same 
35 basic concept. 
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One more object is to facilitate electronic trans- 
actions independently of the choice of information trans- 
fer channel for the used transaction message. 

A still further object is to facilitate electronic 
5 transactions which basically do not require transmission 
of the used transaction message through a reliable infor- 
mation transfer channel . 

Summary of the Invention 

The above-mentioned objects are achieved by the 
10 inventive features that are stated in the accompanying 
claims . 

The invention thus is based on an insight of the 
advantage of using special transaction messages which, 
independently and under the user's full control, are 

15 created by a user and which are of such nature that they 
can have been created by the user only, they cannot have 
been tampered with while being transferred to a receiver 
or addressee without such tampering being easily recog- 
nised (authentication) and can easily be validated after 

20 transfer for the purpose of finalising the desired trans- 
action. According to the invention, the sender uses a 
unique smart card assigned to him, with a private key 
stored therein (whose public equivalence in an asymmetri- 
cal cryptographic system is generally available) in order 

25 to provide a transaction message created by the sender 
with a digital signature which is unique to the sender, 
whereupon the signed transaction message can be trans- 
ferred in an arbitrary manner. 

Only a lawful user of the smart card can activate 

30 this to be signed, thereby satisfying a basic identity 

requirement. The digital signature further entails a data 
lock which prevents the message from being tampered with 
without this being recognised in a subsequent authentica- 
tion by using the generally available public key, which 

35 belongs to the user. The user's independent creating of 
the transaction message means full control of the con- 
tents of the message. The invention thus requires that 
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sensitive information, such as a card number, in the 
transmitted transaction message be connected to a digital 
signature to make the information at issue usable. With- 
out connection to a digital signature, the information 
5 thus is basically of no value and consequently cannot 
be misused for false network transactions, even if the 
information could be caught by a person not concerned in 
connection with a transmission of the transaction mes- 
sage. Basically, it is irrelevant how the transmission 
10 takes place. This means an approach which is completely 
opposite to today's striving for the provision of spe- 
cial, reliable, i.e. encrypted, communication systems for 
transmitting transaction messages via e.g. the Internet. 

It is preferred that a transaction message according 
15 to the invention contains information on sender, trans- 
action amount, and receiver and preferably a variable 
piece of information, such as a serial number. 

According to the invention, the user thus creates 
what can be said to be a signed "electronic cheque", 
20 which can be transmitted in an arbitrary manner and at 
an arbitrary point of time to an addressee or receiver . 

Upon receipt, a transaction message according to the 
invention can be checked for authenticity by checking the 
digital signature, whereupon validation and charging or 
25 crediting the receiver with the transaction amount at 
issue can take place in an arbitrary, suitable manner, 
suitably according to the same principles as apply to the 
cashing of an ordinary cheque or to clearing in connec- 
tion with a card purchase, 
30 According to the invention, the transmitted, signed 

transaction message may contain the required transaction 
information as plain text, in which case the digital sig- 
nature can, in a manner known per se, be provided on the 
basis of a condensate of the message information. This 
35 means that the subsequent authentication, validation and 
crediting on the receiver side will be facilitated since 
the required information is immediately available, such 
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as information on sender, which makes it easy to fetch 
the correct public key for authentication of the digital 
signature > 

If the digital signature is effected on the entire 
5 transaction message such that this is transmitted in 

encrypted form, the transmitted transaction message can 
be provided with special sender information which makes 
it possible on the receiver side to fetch the correct 
public key for authentication and conversion of the 

10 transaction message into plain text. 

According to the invention, the transaction message 
may contain sender information of an arbitrary, suitable 
kind, such as at least one of the following pieces of 
information: a card number, a cash card number, a charge 

15 card number, a credit card number, an account number, an 
invoice number and an ID number. If the smart card uti- 
lised according to the invention is a card connected to 
an account, such as a credit card, it may be preferred 
to use the associated card number as sender information. 

20 As those skilled in the art realise, it is however pos- 
sible to use any kind of information, which on the re- 
ceiver side can easily be connected to a user identity 
and, consequently, to an associated account which is to 
be charged. 

25 For the receiver information, basically the same 

applies. For instance, at least one of the following 
pieces of information may be involved: a card number, 
a cash card number, a charge card number, a credit card 
number, an account number, an invoice number and an ID 

30 number. Also in this case, it is sufficient that the 
information on the receiver side can be unambiguously 
related to a receiver of payment. It should be noted that 
transferring a transaction amount to a receiver need not 
entail the crediting of a receiver account, but it may 

35 also imply that e.g. an administrative unit receiving the 
transaction message, after authentication and validation. 
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charges a sender account and sends to the receiver what 
may be considered a check or a postal order. 

As described above, an essential feature of the pre- 
sent invention is that the sender, i.e. the user of the 
5 smart card, creates and signs the transaction message 

under his own control, i.e. basically independently of a 
connection to a communications network and of a computer 
dialogue with a receiver, although such a dialogue of 
course may take place in connection with the transmission 

10 of a signed transaction message. Consequently the trans- 
action message is created preferably without connection 
to the communications network or off-line. This means 
that the sender fully controls which data are input for 
creating of the transaction message. As will be appre- 

15 ciated, the signing can be carried out only by the sender 
since in the normal case he is the only one to be able 
to activate his smart card and to release the signing. 
Regarding the transmission or handing over of the signed 
transmission message there are, however, no restrictions, 

20 as will be quite easily appreciated. For example, the 

user or some person assisting him may take the smart card 
with the signed transaction message present therein to 
send the message later, to send the. message from some 
other place etc, that is to say there is a great freedom 

25 of choice. The signed transaction message could also be 
transferred to special intermediate materials or a 
transport medium to be transmitted to a receiver and/or 
addressee . 

According to the invention, it is advantageous that 
30 the transaction message is created in the smart card. The 
transaction message may suitably be created by means of 
the software inserted in the smart card in advance and 
sender information preferably inserted in the card in 
advance, e.g. a card number. Suitably a new serial num- 
35 ber is automatically created for each transaction mes- 
sage. The input of the necessary message information in 
the card may be carried out in different ways, for in- 
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stance with the aid of the input means arranged on the 
smart card, the card advantageously consisting of a so- 
called advanced smart card. Information that is required 
for the transaction message can also be input with the 
5 aid of a protected card terminal, which advantageously 
may consist of the user*s own terminal or computer pro- 
vided with a card reader. Information that is necessary 
for the transaction message can also be input by means 
of a separate card communication unit, the latter prefer- 

10 ably later also serving as card activator. Such a unit 

can advantageously be designed as a small portable unit, 
which the user may take along and which is utilised by 
the user when he wants to activate his card and/or input 
information in the card in surroundings where no protect- 

15 ed card terminal is available. 

Information which is required for the transaction 
message can also be input by means of a telecommunica- 
tions unit controlled by the smart card, especially a 
mobile telecommunications unit, such as a mobile tele- 

20 phone device. In this context, the unit may also be used 
to transfer the signed transaction message, for instance 
by using a so-called SMS-type service. 

The man skilled in the art realises that it is also 
possible to create the actual transaction message outside 

25 the smart card by using, for instance, one of the above- 
mentioned information input means. The created trans- 
action message is then input in the smart card to be 
signed. 

According to a first aspect of the present inven- 
30 tion, a method is provided for carrying out electronic 
transactions, in which a sender of transaction messages 
is assigned a smart card with an associated unique iden- 
tity and a private key stored in the card in a protected 
manner, and in which an associated public key is kept 
35 generally available, said method being characterised in 
that in connection with an electronic transaction under 
the sender's own control, preferably through his own 
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input of message information, the sender creates a trans- 
action message, which contains information necessary for 
the transaction, and, in his smart card, provides the 
created transaction message with his digital signature 
5 while using his own private key for the purpose of subse- 
quent output and transmission of the transaction message. 

According to a second aspect of the present inven- 
tion, a smart card is provided for carrying out electro- 
nic transactions, said card comprising means for storing 

10 of card identification information, means for protected 

storing of a private key, means for storing of an asymme- 
trical algorithm, means for input of transaction informa- 
tion into the card, processor means for creating in the 
card a transaction message based on input transaction 

15 information, such as information on amount and receiver, 
and optionally information stored in the card, such as 
information on sender and preferably a serial number, and 
for providing the transaction message with a digital sig- 
nature on the basis of said private key and said asymme- 

20 trical algorithm, and means for output of the signed 
transaction message . 

According to a third aspect of the present inven- 
tion, a combination is provided of a smart card and a 
user-controlled communication unit, which is arranged for 

2 5 communication with the smart card and with which the card 
is adapted to be combined with a view to producing an 
electronic transaction message, the card comprising means 
for protected storing of a private key, means for storing 
of an asymmetrical algorithm and processor means for pro- 

30 viding a created transaction message with a digital sig- 
nature based on said private key and said algorithm, and 
said communication unit comprising means for input of 
transaction information, and means being arranged in the 
communication unit and/or in the card for producing said 

35 transaction message. 

A fourth aspect of the present invention involves 
use of a smart card with a private key stored therein and 
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asynunetrical cryptographic algorithm for providing in the 
card, independently of the communications network, an 
electronic transaction message provided with a digital 
signature based on the private key. 
5 Additional aspects of distinctive features of the 

invention will appear from the following detailed de- 
scription of various embodiments with reference to the 
accompanying drawings . 

Brief Description of the Drawings 

10 Fig. 1 is a schematic illustration of an example of 

the carrying out of electronic transactions by using an 
open network, such as the Internet, in accordance with an 
embodiment of the present invention. 

Fig, 2 is a schematic illustration of the same kind 

15 as in Fig. 1, exemplifying alternative ways of carrying, 
out electronic transactions according to the invention. 

Fig. 3 is a schematic illustration of an example of 
the carrying out of electronic transactions by using a 
shop card terminal, according to a different embodiment 

20 of the present invention. 

Fig. 4 is a schematic illustration of the same kind 
as in Fig. 3 of another example of the carrying out of 
electronic transactions by using a shop card terminal, 
according to the present invention. 

25 Fig. 5 is a ' schematic illustration of an example of 

the carrying out of electronic transactions by using a 
mobile telephone system, according to one more embodiment 
of the present invention. 

Fig. 6 is a schematic illustration of an example of 

30 the carrying out of electronic transactions by using an 

open network for direct contact with a bank, according to 
another embodiment of the present invention. 

Fig. 7 is a schematic illustration of examples show- 
ing how an advanced smart card can be used to carry out 

35 electronic transactions in accordance with the present 
invention . 
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Description of Embodiments 

Fig. 1 illustrates schematically a first embodiment 
of the invention, which can be used for credit card pay- 
ment via an open network, such as the Internet, between 
5 a sender and a receiver included in a network. The sender 
has access to a smart card 1 and a computer 3 which is 
provided with a suitable card reader (indicated at 2), 
and which typically can be a home computer and is con- 
nected to the Internet 5. A network server 7 is connected 

10 to the network 5 and to various credit card administra- 
tors 8 and 9 included in the network. The latter are in 
conventional manner connected to each other and to 
various institutions keeping accounts, such as banks 10, 
11. In the present example, the sender is supposed to 

15 have an account in the bank 10 and a credit card admi- 
nistered by the administrator 8, while the receiver 12 
has an account in the bank 11 and a credit card adminis- 
tered by the administrator 9. 

A trusted third party (TTP) 13 is network admini- 

20 strator and responsible for the necessary handling of 
keys. TTP 13 thus assigns to each user his private key 
which is stored in a protected manner in the user's card 
1, and keeps a catalogue 15 available, from which the 
public key of each user can be collected . 

25 The user's smart card 1, which also has a conven- 

tional credit card function, contains in a known manner 
memory and processor means in the form of one or more 
integrated circuits (indicated at 17), as well as con- 
ventional means for enabling communication between the 

30 card and a card reader when the card is placed in the 
latter. 

In addition to the above-mentioned private key, said 
memory and processor means contain a cryptographic algo- 
rithm of an asymmetrical type, which can be a DES algo- 
35 rithm, and software for effecting the signing of a trans- 
action message based on the private key and said crypto- , 
graphic algorithm. The smart card 1 is activated in an 
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arbitrary, suitable manner, for instance by means of a 
PIN input in the card, or biometrically . 

When performing a transaction, the card 1 is placed 
in the card reader 17 of the computer 3 and the card 
5 is activated if this has not already been done. A trans- 
action message can now be created in the smart card 1 
and/or in the computer 3. If the creation takes place 
exclusively in the card, which from the viewpoint of 
security may be preferred, the card also contains soft- 

10 ware that is suitable for this purpose. In this case, the 
required information for the transaction message (espe- 
cially regarding amount and receiver) is input via the 
keyboard of the computer 3 into the card. 

If the actual transaction message is created in 

15 the computer, this has been provided with the software 

required for this purpose, which is suitably supplied to 
the user in connection with the issuance of the smart 
card. Also in this case, message information is input 
via the keyboard. 

20 It is advantageous to use as sender information a 

card identification, such as the number of the smart 
card, which is automatically supplied by the card as the 
transaction message is being created. As receiver infor- 
mation the card number of the receiver can advantageously 

25 be input. 

After creating the transaction message, it should be 
provided with a serial number and signed, which, as men- 
tioned above, is effected in the card. If the actual mes- 
sage has been created in the card, it may be desirable, 

30 with a view to restricting the software that must be 

available in the card, to effect the digital signature on 
the actual message, whereby the message obtains the form 
of cryptographic text. The signed message which is then 
transferred must be able to supply information on the 
35 sender, thereby making it possible to collect the public 
key necessary for authentication, as will be described 
below. Especially if the transaction message is created 
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in the sender's own protected computer, it may be suit- 
able to generate the digital signature on a condensate of 
the actual message, which will be available as plain text 
and also can be transmitted as plain text. 
5 The signed transaction message can now advantageous- 

ly be given the form of e-mail and then be transmitted 
via the network 5 to the network server 7. 

If the transaction message is available as plain 
text, the server 7 can, based on the information in the 

10 transaction message, directly send the signed message 
either to the sender's or the receiver's card admini- 
strator 8, 9, respectively, for the purposes of authenti- 
cation and, if authenticity has been established, subse- 
quent validation, charging the sender and crediting the 

15 sender with the transaction amount involved, while apply- 
ing a suitable clearing procedure. 

The authentication means that, for instance, the 
sender's card administrator fetches the sender's public 
key from a key catalogue of his own or the catalogue 15 

20 of TTP 13 and, by means thereof and of the cryptographic 
algorithm involved, checks the digital signature of the 
message. 

If the message received by the server is not avail- 
able as plain text, the server 7 fetches from the cata- 

25 logue 15 the public key belonging to the sender who can 
be identified by the received, signed transaction mes- 
sage, e.g. on the basis of special sender information 
such as a network identity or Internet identity. After 
conventional decrypting of the message by using the 

30 fetched public key, the server 7 has access to the infor- 
mation of the message as plain text and can send the mes- 
sage on for authentication etc, as mentioned above. 

One more alternative is to provide the message sent 
on the network 5 with a stated address of the authorised 

35 card administrator, for instance 8, such that the server 
can directly direct the message to him for continued pro- 
cessing as described above. If the signed message is not 
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available as plain text, the received message must also 
in this case provide such information that the correct 
public key can be fetched for authentication and decryp- 
tion of the actual message. 
5 Fig. 2 illustrates schematically a second embodiment 

of the invention, which uses basically the same configu- 
ration as in Fig. 1, although the transaction message 
from the sender is transmitted directly to a receiver's 
computer 21 via the network 5. The receiver sends the 

10 message on, which can be carried out via the network to 
the server 7, as indicated by the arrow 23, or by some 
other route as indicated by the arrow 25. 

In this embodiment, it may be convenient that the 
actual message is available as plain text, such that the 

15 receiver can see the information therein even if he does 
not have immediate access to the sender's public key for 
authentication or decryption of the digital signature. If 
needed, the signed message can however be encrypted by 
the sender with a public key belonging to the receiver, 

20 in which case the receiver upon receipt decrypts the mes- 
sage by using his own private key and the associated 
cryptographic algorithm and then forwards the decrypted, 
but still signed message. 

In case of a transport route 25 other than the net- 

25 work 5, it may be advantageous to use intermediate mate- 
rials, for instance a disk (indicated at 26) , which in 
some suitable and reliable manner, the receiver hands 
over to his card administrator or bank for continued pro- 
cessing in accordance with that described above. It will 

30 be appreciated that the receiver can collect a number of 
received transaction messages on such intermediate mate- 
rials before taking steps for the continued processing. 

Fig. 3 illustrates schematically an embodiment of 
the invention which is suited for transactions via a 

35 foreign "terminal" 31 and which uses a user-controlled 
portable unit 33 for creating a transaction message. 
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The unit 33 consists of a combined activator and 
information inputting means for the smart card. The unit 
33 is in a suitable manner arranged for communication 
with the card 1, for instance by comprising an integrated 
5 card reader, into which the card is inserted. The unit 33 
further has a keyboard and a display. 

When paying in e.g. a shop, the card is inserted in 
the unit 33 and activated, for instance, by inputting a 
PIN code by means of the keyboard of the unit. By means 

10 of the keyboard, the necessary payment information is 
also input, such as amount and receiver. If the trans^ 
action message is both created and signed in the actual 
card, the actual information will be transferred to the 
card. If the actual message and optionally a condensate 

15 thereof are to be created in the unit 33 for the purposes 
of transferring to and signing in the card 1, the unit is 
provided with processor means and the software required 
for this purpose. 

The card with the signed transaction message is now 

20 removed from the unit 33 and inserted into the shop's 

reader/terminal 31, from which the message is transmitted 
for continued processing in the same manner as described 
above. Accepted authentication and validation may suit- 
ably result in a receipt being sent back to the terminal. 

25 It will be appreciated that the terminal 31 could, 

of course, communicate with the server 7 in some other 
manner than via the network 5, for instance via a pro- 
tected connection . 

Fig. 4 illustrates a variant of the embodiment shown 

30 in Fig. 3. The unit 33 in Fig. 3 is replaced by a pro- 
tected, preferably off-line computer or terminal 43, 
which can be arranged in, for instance, a shop and per- 
mits off-line, secure creation of a transaction message 
in a way similar to that described in connection with 
35 Fig. 3, for the purposes of input in a shop card terminal 
31. 
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Fig. 5 illustrates an embodiment of the present 
invention which involves the use of a mobile telephone 
device 51 and an associated mobile telephone network 55. 
The mobile telephone device comprises, in addition to a 
5 mobile telephone function, also such an activating and 
input function as described in connection with the unit 
33 in Fig. 3. The mobile telephone function is preferably 
also controlled by the smart card. 

With the aid of the telephone function, the signed 

10 transaction message is transmitted to a unit or central 

unit 57, which effects continued processing of the trans- 
action message, for instance, in accordance with that de- 
scribed in connection with the preceding Figures. 

The transmission of the transaction message can ad- 

15 vantageously take place while using a so-called SMS ser- 
vice or the like of the mobile telephone network. 

The unit 57 could also be a special central unit, 
which after authentication etc. effects payments based 
on the received transaction messages. 

20 Fig . 6 illustrates an embodiment of the present 

invention which advantageously can be used to effect 
payment orders. At a sender's, i.e. payer's place, signed 
transaction messages are created as described, in this 
case exemplified with the same method as in Fig, 1. The 

25 transaction message is transmitted to the sender's bank 
10 keeping the account, which in a catalogue 60 has 
access to the sender ' s public key . It will be appreciated 
that the bank could be card issuer and key administrator 
and that the sender information in the transaction mes- 

30 sage can suitably consist of the sender's bank account 
number . 

Upon receipt of a transaction message and authenti- 
cation thereof, the sender ' s bank 10 provides for, by a 
clearing procedure, the payee, who is identified in the 
35 transaction message suitably by the associated bank 

account number, being credited with the amount at issue. 
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i.e. the receiver's account in the receiver's bank 11 
being credited with the amount at issue. 

Another alternative possibility is that the sender's 
bank 10 sends a delivery order directly to the receiver 
5 12 based on, for instance, receiver information in the 
transaction message. This alternative is indicated by 
means of the dashed line 52 in Fig. 6. 

In the embodiment according to Fig. 6 it may be con- 
venient to encrypt the transmitted, signed transaction 
10 message, thereby increasing the security. The sender then 
uses the public key of the bank 10 and preferably the 
same cryptographic algorithm as is used for signing. As 
will be appreciated, the bank 10 can immediately carry 
out decryption by using its private key. 
15 If the bank 10 is administrator of the sender's pair 

of keys, i.e. has both the public key and the private key 
belonging to the sender, the sender can alternatively 
carry out the encryption of the signed message with the 
aid of his public key. The bank 10 can then decrypt the 
20 transmitted message by using the sender's private key, 
which is collected from a catalogue, before authentica- 
tion is carried out by using the sender's public key. 

Finally, Fig. 7 illustrates schematically the use 
of a so-called advanced smart cart in connection with the 
25 invention. The advanced smart card 71 also has a keyboard 
and a display, which allows that a signed transaction 
message can be created in the card completely without 
external aids. Subsequently the card can be inserted into 
e.g. a computer or a terminal for the purposes of for- 
30 warding the message and continued processing in accor- 
dance with that described above. 

Although the invention has been illustrated by a 
number of embodiments, the invention is of course not 
restricted thereto, and changes and modifications are 
35 feasible within the scope of the appended claims. Thus, 
individual features from the various embodiments may 
be brought together in new combinations within the scope 
of the inventive idea. 
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CLAIMS 

1. A method for performing electronic trans- 

5 actions, in which a sender of transaction messages is 

assigned a smart card with an associated unique identity 
and a private key stored in the card in a protected man- 
ner, and in which an associated public key is kept gene- 
rally available, characterised in that in 

10 connection with an electronic transaction under the 

sender's own control, preferably through his own input 
of message information, the sender creates a transaction 
message, which contains information necessary for the 
transaction, and, in his smart card, provides the created 

15 transaction message with his digital signature while 
using his own private key for subsequent output and 
transmission of the transaction message. 

2. A method as claimed in claim 1, charac- 
terised in that the transaction message contains 

20 information on sender, receiver, amount and preferably 
a transaction serial number. 

3. A method as claimed in claim lor2, char- 
acterised in that the transaction message is 
created off-line, i.e. not connected to the communica- 

25 tions network that is used for the subsequent transmis- 
sion of the transaction message. 

4. A method as claimed in claim 3, charac- 
terised in that the transaction message is created 
off-line . 

30 5. A method as claimed in any one of the preceding 

claims, characterised in that the transaction 
message is created in the smart card. 

6. A method as claimed in claim 5, charac- 
terised in that the transaction message is created 

35 with the aid of software inserted in the smart card in 
advance and preferably also sender information inserted 
in the card in advance. 
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7. A method as claimed in claim 5 or 6, char- 
acterised in that information required for the 
transaction message is input with the aid of input means 
arranged on the smart card, the card preferably being a 

5 so-called advanced smart card . 

8. A method as claimed in any one of claims 1-6, 
characterised in that information necessary 
for the transaction message is input with the aid of a 
protected card terminal . 

10 9. A method as claimed in any one of claims 1-6, 

characterised in that information necessary 
for the transaction message is input with the aid of a 
separate card communication unit, the latter preferably 
also being a card activator. 

15 10. A method as claimed in any one of claims 1-6, 

characterised in that information necessary 
for the transaction message is input with the aid of a 
telecommunications unit controlled by the smart card, 
especially a mobile telecommunications unit such as a 

2 0 mobile phone. 

11. A method as claimed in any one of the preceding 
claims, characterised in that the transaction 
message contains sender information in the form of at 
least one of the following pieces of information: a card 

25 number, a cash card number, a charge card number, a cre- 
dit card number, an account number, an invoice number and 
an ID number. 

12. A method as claimed in any one of the preceding 
claims, characterised in that the transaction 

30 message contains receiver information in the form of at 
least one of the following pieces of information: a card 
number, a cash card number, a charge card number, a cre- 
dit card number, an account number, an invoice number and 
an ID number. 

35 13. A method as claimed in any one of the preceding 

claims, characterised in that the signed 
transaction message is sent to a card or account admini- 
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strator regarding the sender or receiver, that the digi- 
tal signature of the transaction message is authenticated 
by using the public key, which is assigned to the one who 
is identified as sender by the transmitted transaction 
5 message, and that in case of authenticity, the receiver 
is credited with the transaction amount by a clearing 
process . 

14. A method as claimed in claim 13, charac- 
terised in that the signed transaction message is 

10 first sent to the receiver, who optionally after his own 
checking of the digital signature of the message forwards 
the signed transaction message to said card or account 
administrator . 

15 A method as claimed in any one of claims 1-12, 

15 characterised in that the signed transaction 
message is encrypted by using a public key belonging to 
the addressee, to whom the transaction message is sent, 
that the encrypted, signed transaction message is sent 
to the addressee, that the addressee by using his private 

20 key decrypts the signed transaction message, that the 

digital signature of the transaction message is authenti- 
cated by using the public key which is assigned to the 
one who is identified as sender by the transmitted trans- 
action message, and that the receiver, in case of authen- 

25 ticity, is credited with the transaction amount by a 
clearing process. 

16. A method as claimed in claim 15, charac- 
terised in that the addressee is the receiver, that 
the receiver, after decryption, sends the signed trans- 

30 action message to a card or account administrator, where- 
upon said authentication takes place, 

17. A method as claimed in any one of claims 1-12, 
characterised in that the signed transaction 
message is encrypted by using the sender's public key and 

35 is provided with sender information and is then sent to a 
card or account administrator, who has the sender's pri- - 
vate key and who preferably has issued the user's smart 
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card, that said administrator decrypts the received 
encrypted message by using said private key, that authen- 
tication of the digital signature of the decrypted trans- 
action message takes place by using the public key, which 
5 is assigned to the one who is identified as sender by the 
transmitted transaction message, and that the receiver, 
in case of authenticity, is credited with the transaction 
amount by a clearing process. 

18. A method as claimed in any one of claims 1-14, 
10 characterised in that the signed transaction 

message is sent non-encrypted, especially via a public 
communications network, such as the Internet or a tele- 
communications network . 

19. A method as claimed in any one of the preced- 
15 ing claims, characterised in that the signed 

transaction message is sent by e-mail. 

20. A method as claimed in any one of claims 1-18, 
characterised in that the signed transaction 
message is sent via a mobile telephone network, especial- 

20 ly by using a so-called SMS service. 

21. A smart card for carrying out electronic trans- 
actions, comprising means for storing card identification 
information, means for protected storing of a private 
key, means for storing an asymmetrical algorithm, means 

25 for input of transaction information into the card, pro- 
cessor means for creating in the card a transaction mes- 
sage based on input transaction information, such as 
information on amount and receiver, and optionally infor- 
mation stored in the card, such as information on sender 

30 and preferably a serial number, and for providing the 

transaction message with a digital signature on the basis 
of said private key and said asymmetrical algorithm, and 
means for output of the signed transaction message. 

22. A card as claimed in claim 21, c h a r a c - 

35 terised in that it is of a so-called advanced type. 

23. A combination of a smart card and a user-con- . 
trolled communication unit, which is arranged for commu- 
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ni cat ion with the smart card and with which the card is 
adapted to be combined with a view to producing an elec- 
tronic transaction message, the card comprising means for 
protected storing of a private key ^ means for storing an 
5 asymmetrical algorithm and processor means for providing 
a created transaction message with a digital signature 
based on said private key and said algorithm, and said 
communication unit comprising means for input of trans- 
action information, and means being arranged in the com- 

10 munication unit and/or in the card for creating said 
transaction message . 

24. A combination as claimed in claim 23, 
characterised in that the communication unit 
is a mobile telecommunication device. 

15 25. A combination as claimed in claim 23, 

characterised in that the communication unit 
is a combined card activator and information input ter/ 
processor . 

26. Use of a smart card with a private key stored 
20 therein for providing, independently of the communica- 
tions network, an electronic transaction message provided 
with a digital signature based on the private key. 
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